Vulnerabilities > CVE-2024-53674 - XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
hpe
CWE-611

Summary

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.